diff --git a/docs/VLAN-NODE-IP-MIGRATION.md b/docs/VLAN-NODE-IP-MIGRATION.md index 3d71687..372b960 100644 --- a/docs/VLAN-NODE-IP-MIGRATION.md +++ b/docs/VLAN-NODE-IP-MIGRATION.md @@ -149,7 +149,7 @@ Test VLAN migration on a worker node first: ```bash # Apply updated config to n3 -cd /Users/michaeldileo/src/keyboard-vagabond +cd /Users//src/keyboard-vagabond talosctl -e -n apply-config \ --file machineconfigs/n3-vlan.yaml diff --git a/docs/theme-digest.md b/docs/theme-digest.md index 8189a32..9d25db0 100644 --- a/docs/theme-digest.md +++ b/docs/theme-digest.md @@ -27,7 +27,7 @@ Here are some other reference sites from bigger instances: * https://pixelfed.social (click About and Explore) * https://piefed.social * https://bookwyrm.social -* My personal blog: https://blog.michaeldileo.org for Write Freely +* My personal blog: https://blog. for Write Freely These sevices generally support custom mascot icons and background banners. Themeing and custom CSS has varying degrees of support, though I have full access to the server, so I could override the built in CSS, though that could likely be an endeavor, which I'm not user would be worth the effort. diff --git a/manifests/applications/piefed/flower-monitoring.yaml b/manifests/applications/piefed/flower-monitoring.yaml index d2802b4..4ba3bb1 100644 --- a/manifests/applications/piefed/flower-monitoring.yaml +++ b/manifests/applications/piefed/flower-monitoring.yaml @@ -31,13 +31,13 @@ spec: - containerPort: 5555 env: - name: CELERY_BROKER_URL - value: "redis://:9EE33616C76D42A68442228B918F0A7D@redis-ha-haproxy.redis-system.svc.cluster.local:6379/0" + value: "redis://:@redis-ha-haproxy.redis-system.svc.cluster.local:6379/0" - name: FLOWER_PORT value: "5555" - name: FLOWER_BASIC_AUTH - value: "admin:flower123" # Change this password! + value: "admin:" # Change this password! - name: FLOWER_BROKER_API - value: "redis://:9EE33616C76D42A68442228B918F0A7D@redis-ha-haproxy.redis-system.svc.cluster.local:6379/0,redis://:9EE33616C76D42A68442228B918F0A7D@redis-ha-haproxy.redis-system.svc.cluster.local:6379/3" + value: "redis://:@redis-ha-haproxy.redis-system.svc.cluster.local:6379/0,redis://:@redis-ha-haproxy.redis-system.svc.cluster.local:6379/3" resources: requests: cpu: 100m diff --git a/manifests/cluster/flux-system/gotk-sync.yaml b/manifests/cluster/flux-system/gotk-sync.yaml index bed3c70..205e827 100644 --- a/manifests/cluster/flux-system/gotk-sync.yaml +++ b/manifests/cluster/flux-system/gotk-sync.yaml @@ -11,7 +11,7 @@ spec: branch: k8s-fleet secretRef: name: flux-system - url: https://source.michaeldileo.org/michael_dileo/keyboard-vagabond.git + url: https:////keyboard-vagabond.git --- apiVersion: kustomize.toolkit.fluxcd.io/v1 kind: Kustomization diff --git a/manifests/infrastructure/celery-monitoring/flower-deployment.yaml b/manifests/infrastructure/celery-monitoring/flower-deployment.yaml index 7e99c4f..31ff700 100644 --- a/manifests/infrastructure/celery-monitoring/flower-deployment.yaml +++ b/manifests/infrastructure/celery-monitoring/flower-deployment.yaml @@ -26,13 +26,13 @@ spec: - containerPort: 5555 env: - name: CELERY_BROKER_URL - value: "redis://:9EE33616C76D42A68442228B918F0A7D@redis-ha-haproxy.redis-system.svc.cluster.local:6379/0" + value: "redis://:@redis-ha-haproxy.redis-system.svc.cluster.local:6379/0" - name: FLOWER_PORT value: "5555" # FLOWER_BASIC_AUTH removed - authentication handled by NGINX Ingress # This allows Kubernetes health checks to work properly - name: FLOWER_BROKER_API - value: "redis://:9EE33616C76D42A68442228B918F0A7D@redis-ha-haproxy.redis-system.svc.cluster.local:6379/0,redis://:9EE33616C76D42A68442228B918F0A7D@redis-ha-haproxy.redis-system.svc.cluster.local:6379/3" + value: "redis://:@redis-ha-haproxy.redis-system.svc.cluster.local:6379/0,redis://:@redis-ha-haproxy.redis-system.svc.cluster.local:6379/3" resources: requests: cpu: 100m diff --git a/manifests/infrastructure/longhorn/S3-API-OPTIMIZATION.md b/manifests/infrastructure/longhorn/S3-API-OPTIMIZATION.md index c49d368..54e221f 100644 --- a/manifests/infrastructure/longhorn/S3-API-OPTIMIZATION.md +++ b/manifests/infrastructure/longhorn/S3-API-OPTIMIZATION.md @@ -141,7 +141,7 @@ kubectl get networkpolicy -n longhorn-system longhorn-block-s3-access kubectl get cronjobs -n longhorn-system | grep longhorn-.*-s3-access # 3. Test: S3 access should be blocked -kubectl exec -n longhorn-system deploy/longhorn-ui -- curl -I https://eu-central-003.backblazeb2.com +kubectl exec -n longhorn-system deploy/longhorn-ui -- curl -I https:// # Expected: Connection timeout or network error ``` diff --git a/manifests/infrastructure/longhorn/S3-API-SOLUTION-FINAL.md b/manifests/infrastructure/longhorn/S3-API-SOLUTION-FINAL.md index a8c49dc..6662d26 100644 --- a/manifests/infrastructure/longhorn/S3-API-SOLUTION-FINAL.md +++ b/manifests/infrastructure/longhorn/S3-API-SOLUTION-FINAL.md @@ -36,7 +36,7 @@ Longhorn's `backupstore-poll-interval` setting controls how frequently Longhorn ```yaml data: default-resource.yaml: |- - "backup-target": "s3://longhorn-keyboard-vagabond@eu-central-003.backblazeb2.com/longhorn-backup" + "backup-target": "s3://@/longhorn-backup" "backup-target-credential-secret": "backblaze-credentials" "backupstore-poll-interval": "86400" # 24 hours "virtual-hosted-style": "true" @@ -164,7 +164,7 @@ kubectl get jobs -n longhorn-system | grep backup # Check backup target connectivity (should work anytime) MANAGER_POD=$(kubectl get pods -n longhorn-system -l app=longhorn-manager --no-headers | head -1 | awk '{print $1}') -kubectl exec -n longhorn-system "$MANAGER_POD" -c longhorn-manager -- curl -I https://eu-central-003.backblazeb2.com +kubectl exec -n longhorn-system "$MANAGER_POD" -c longhorn-manager -- curl -I https:// ``` ## References diff --git a/manifests/infrastructure/redis/bitnami/secret.yaml b/manifests/infrastructure/redis/bitnami/secret.yaml index d28ae3d..778d0c8 100644 --- a/manifests/infrastructure/redis/bitnami/secret.yaml +++ b/manifests/infrastructure/redis/bitnami/secret.yaml @@ -5,6 +5,6 @@ metadata: namespace: redis-system type: Opaque stringData: - REDIS_PASSWORD: 9EE33616C76D42A68442228B918F0A7D - redis-password: 9EE33616C76D42A68442228B918F0A7D - redis-replica-password: 9EE33616C76D42A68442228B918F0A7D + REDIS_PASSWORD: + redis-password: + redis-replica-password: diff --git a/manifests/infrastructure/redis/secret.yaml b/manifests/infrastructure/redis/secret.yaml index 1d5a41a..f552204 100644 --- a/manifests/infrastructure/redis/secret.yaml +++ b/manifests/infrastructure/redis/secret.yaml @@ -5,5 +5,5 @@ metadata: namespace: redis-system type: Opaque stringData: - redis-password: 9EE33616C76D42A68442228B918F0A7D - redis-replica-password: 9EE33616C76D42A68442228B918F0A7D + redis-password: + redis-replica-password: diff --git a/manifests/infrastructure/renovate/renovate.yaml b/manifests/infrastructure/renovate/renovate.yaml index 87eff66..7ba64a8 100644 --- a/manifests/infrastructure/renovate/renovate.yaml +++ b/manifests/infrastructure/renovate/renovate.yaml @@ -39,9 +39,9 @@ spec: "extends": ["config:recommended"], "labels": ["renovate", "dependencies"], "platform": "gitea", - "endpoint": "https://source.michaeldileo.org/", - "repositories": ["michael_dileo/keyboard-vagabond"], - "gitAuthor": "Renovate Bot ", + "endpoint": "https:///", + "repositories": ["/keyboard-vagabond"], + "gitAuthor": "Renovate Bot >", "kubernetes": { "fileMatch": ["^manifests/.+\\.yaml$"] },